CVE-2006-0056
Published Feb 13, 2006
Last updated 14 years ago
Overview
- Description
- Double free vulnerability in the authentication and authentication token alteration code in PAM-MySQL 0.6.x before 0.6.2 and 0.7.x before 0.7pre3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted passwords, which lead to a double free of a pointer that was created by the pam_get_item function. NOTE: this issue only occurs in certain configurations in which there are multiple PAM modules, PAM-MySQL is not evaluated first, and there are no requisite modules before PAM-MySQL.
- Source
- cret@cert.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-119
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:pam-mysql:pam-mysql:0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "89B29AFD-6EA6-4AEE-83F7-94AE927C5AEA"
},
{
"criteria": "cpe:2.3:a:pam-mysql:pam-mysql:0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E3BFC22D-75CF-4104-87D1-E71CB054905E"
},
{
"criteria": "cpe:2.3:a:pam-mysql:pam-mysql:0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E0B82080-5499-46A8-8F3A-EB9BAB36C5B7"
},
{
"criteria": "cpe:2.3:a:pam-mysql:pam-mysql:0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C87D5EFC-27F3-4F37-87CA-AC120C9A9D89"
},
{
"criteria": "cpe:2.3:a:pam-mysql:pam-mysql:0.4.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2D23FBC9-0628-4CF2-AB25-0FC59FE539DD"
},
{
"criteria": "cpe:2.3:a:pam-mysql:pam-mysql:0.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "425E4F3B-4B28-4283-ACD5-494BEE2A1866"
},
{
"criteria": "cpe:2.3:a:pam-mysql:pam-mysql:0.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0530FA7E-BD7A-4D5F-A3F5-3A7BD6C37030"
},
{
"criteria": "cpe:2.3:a:pam-mysql:pam-mysql:0.7_pre1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "52E62A7D-FD21-484D-89D2-DDC398A18CEA"
},
{
"criteria": "cpe:2.3:a:pam-mysql:pam-mysql:0.7_pre2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4CE9F00A-6938-487C-AC29-61AF37A25B12"
}
],
"operator": "OR"
}
]
}
]